General
-
Target
394a70c47251b594ee8d6743d227ac88a7cbe3fb5225d9c58a2824a4851b5519
-
Size
196KB
-
Sample
210304-jjg2m3mgna
-
MD5
e90268f749737fe247128d9f9c6dbec9
-
SHA1
9e2a7dc828a856f1a5277877de49911b352f5899
-
SHA256
394a70c47251b594ee8d6743d227ac88a7cbe3fb5225d9c58a2824a4851b5519
-
SHA512
f5ed4a9574c697370a1327fca519054acfd1e5e9f4710d34783e6d13639a9f96ce853eed915248aa4fedd7e5ac1e8dce2d51315689413917eeccff695b80a61c
Static task
static1
Behavioral task
behavioral1
Sample
394a70c47251b594ee8d6743d227ac88a7cbe3fb5225d9c58a2824a4851b5519.dll
Resource
win7v20201028
Malware Config
Extracted
dridex
111
37.247.35.132:443
50.243.30.51:6601
162.241.204.234:6516
Targets
-
-
Target
394a70c47251b594ee8d6743d227ac88a7cbe3fb5225d9c58a2824a4851b5519
-
Size
196KB
-
MD5
e90268f749737fe247128d9f9c6dbec9
-
SHA1
9e2a7dc828a856f1a5277877de49911b352f5899
-
SHA256
394a70c47251b594ee8d6743d227ac88a7cbe3fb5225d9c58a2824a4851b5519
-
SHA512
f5ed4a9574c697370a1327fca519054acfd1e5e9f4710d34783e6d13639a9f96ce853eed915248aa4fedd7e5ac1e8dce2d51315689413917eeccff695b80a61c
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-